AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in 
the application: 

1 . (Previously Presented) A method for analyzing data content received at a 
local area network from an external communications network, wherein the 
method comprises: 

receiving unanalyzed content at a local area network; 

passing the unanalyzed content to a switch in the local area network; 

analyzing the unanalyzed content at the switch and generating analyzed 
data; and 

routing the analyzed data to a device in the local area network in 
communication with the switch, wherein the switch comprises a plurality of ports, 
and wherein analyzing the unanalyzed content at the switch comprises the switch 
scanning the plurality of ports and applying a content analysis algorithm to each 
of the plurality of ports, 

wherein applying the content analysis algorithm comprises applying a first 
content analysis algorithm to a first port of the plurality of ports and applying a 
second content analysis algorithm to a second port of the plurality of ports, 
wherein the second content analysis algorithm is different than the first content 
analysis algorithm. 

2. (Previously Presented) The method of claim 1 , wherein the step of 
analyzing the unanalyzed content comprises applying a content filtering algorithm 
to the unanalyzed content upon ingress at one of the plurality of ports. 

3. (Previously Presented) The method of claim 1 , wherein the step of 
analyzing the unanalyzed content comprises applying a content filtering algorithm 
to the unanalyzed content upon egress at one of the plurality of ports. 
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4. (Original) The method of claim 1 wherein the unanalyzed content is 
formatted in data packets. 

5. (Previously Presented) The method of claim 4, wherein analyzing the 
unanalyzed content at the switch comprises the switch applying the content 
analysis algorithm to each data packet of unanalyzed content. 

6. (Previously Presented) The method of claim 5, wherein the switch 
applying the content analysis algorithm comprises the switch executing an anti- 
virus algorithm. 

7. (Previously Presented) The method of claim 5, wherein the switch 
applying the content analysis algorithm comprises the switch executing an 
intrusion detection algorithm. 

8. (Canceled). 

9. (Previously Presented) The method of claim 1 , wherein each of the 
plurality of ports comprises a dedicated processor and each dedicated processor 
for a respective port independently applies a separate content analysis algorithm 
to unanalyzed content at the port, whereby each of the plurality of ports analyzes 
content with its respective processor. 

10. (Original) The method of claim 1 , further comprising receiving a content 
analysis software update at the switch from a managed service provider network 
via the external communications network. 

1 1 . (Previously Presented) The method of claim 1 0, further comprising 
applying the content analysis software update to each of the plurality of ports at 
the switch configured to implement content analysis software contained in the 
content analysis software update. 



Page 3 of 17 



12. (Previously Presented) A method of managing content analysis for a local 
area network from a managed service provider network, wherein the local area 
network comprises a switch in communication with an external communications 
network and at least one device in communication with the switch, wherein the 
method comprises: 

establishing a communication link between the switch of the local area 
network and the managed service provider network via the external 
communications network; 

transmitting port configuration instructions from the managed service 
provider network to the switch of the local area network, the port configuration 
instructions comprising instructions to configure a plurality of ports on a port-to- 
port basis at the switch to implement at least two content analysis functions and 
to cause the switch to scan and apply a first content analysis function to a first 
selected port of the plurality of ports and scan and apply a second content 
analysis - function to a second selected port of the plurality of ports, wherein the 
second content analysis function is different than the first content analysis 
function. 

13. (Previously Presented) The method of claim 12, further comprising: 
receiving a content analysis software update at the managed service 

provider network; 

transmitting the content analysis software update to the switch and 
updating content analysis software at the switch with the content analysis 
software update. 

14. (Original) The method of claim 12, further comprising monitoring content 
analysis activity at the switch from the managed service provider network. 

1 5. (Previously Presented) A method of providing content analysis policy to a 
plurality of networks, the method comprising: 
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establishing a communication link between a switch in each of a plurality 
of subscriber networks and an application management appliance of a managed 
service provider network via an external communications network; 

transmitting one of instructions or update information for a content 
analysis application from the application management appliance to the switch in 
each of the plurality of subscriber networks, the content analysis application 
comprising a first content analysis application and a second content analysis 
application, wherein the switch in each of the plurality of subscriber networks 
comprises a plurality of ports; and 

applying the first content analysis application to a first port of the plurality 
of ports and applying the second content analysis application to a second port of 
the plurality of ports, wherein the second content analysis application is different 
than the first content analysis application; and 

receiving performance metrics of the first and second different content 
analysis applications from each of the plurality of subscriber networks, and 
wherein receiving performance metrics comprises receiving performance metrics 
for each of the plurality of ports in substantially real time. 

16. (Previously Presented) A local area network switch system having content 
analysis capabilities comprising: 
a billing server; 

a plurality of ports in communication with the billing sewer, each of the 
pluralitv of ports configured for communication with a respective external device, 
and each of the plurality of ports comprising: 

an interface connection adapted for connecting with a 
communication line of an external device; 

a processor in communication with the interface connection; 
a memory in communication with the processor; 
an application buffer in communication with the processor and the 
memory, wherein the application buffer contains logic operative on the 



Page 5 of 17 



processor to analyze a content of information passing between the 
external device and the port; and 

a communication bus in communication with each of the plurality of 
ports, the communication bus adapted to carry information between the 
plurality of ports, 

wherein a first application buffer contains logic for applying a first content 
analysis algorithm to a first port of the plurality of ports and a second application 
buffer contains logic for applying a second content analysis algorithm to a second 
port of the plurality of ports, wherein the second content analysis algorithm is 
different than the first content analysis algorithm, 

wherein the billing server is operable to track charges for content analysis 
services and bill on a per port basis. 

1 7. (Previously Presented) The apparatus of claim 1 6 further comprising an 
application buffer administrative interface in communication with the 
communication bus, wherein the application buffer administrative interface 
comprises content analysis resources accessible by the application buffer for 
each of the plurality of ports. 

18. (Original) The apparatus of claim 16, wherein at least one of the 
application buffers comprises anti-virus filtering logic. 

1 9. (Original) The apparatus of claim 1 6, wherein at least one of the 
application buffers comprises network security logic. 

20. (Original) The apparatus of claim 16, wherein at least one of the 
application buffers comprises content filtering logic. 

21 . (Previously Presented) The apparatus of claim 1 7, wherein the application 
buffer administrative interface comprises anti-virus definitions adapted for use by 
anti-virus logic stored on an application buffer at each of the plurality of ports. 
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22. (Previously Presented) A method for analyzing data content received 
at a local area network from an external communications network, wherein the 
method comprises: 

receiving at a local area network unanalyzed data content in a data field of 
a data packet formatted according to a communications protocol; 

passing the unanalyzed data content to a switch in the local area network; 

analyzing the unanalyzed data content at the switch and generating 
analyzed data; and 

routing the analyzed data to a device in the local area network in 
communication with the switch, wherein the switch comprises a plurality of ports, 
and wherein analyzing the unanalyzed content at the switch comprises the switch 
scanning the plurality of ports and applying a content analysis algorithm to each 
of the plurality of ports, 

wherein applying the content analysis algorithm comprises applying a first 
content analysis algorithm to a first port of the plurality of ports and applying a 
second content analysis algorithm to a second port of the plurality of ports, 
wherein the second content analysis algorithm is different than the first content 
analysis algorithm. 

23. (New) The method of claim 22, wherein the first content analysis algorithm 
comprises a first data content analysis algorithm, and wherein the second 
content analysis algorithm comprises a second data content analysis algorithm. 

24. (New) A method for analyzing data content received at a local area 
network from an external communications network, wherein the method 
comprises: 

receiving at a local area network unanalyzed data content in a data field of 
a data packet formatted according to a communications protocol; 

passing the unanalyzed data content to a switch in the local area network; 
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analyzing the unanalyzed data content at the switch and generating 
analyzed data; and 

routing the analyzed data to a device in the local area network in 
communication with the switch, wherein the switch comprises a plurality of ports, 
and wherein analyzing the unanalyzed data content at the switch comprises the 
switch scanning the plurality of ports and applying a data content analysis 
algorithm to each of the plurality of ports, 

wherein applying the data content analysis algorithm comprises applying a 
first data content analysis algorithm to unanalyzed data content at a first port of 
the plurality of ports and applying a second data content analysis algorithm to 
unanalyzed data content at a second port of the plurality of ports, wherein the 
second data content analysis algorithm is different than the first data content 
analysis algorithm. 
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